(Mar 3, 2015)
With the release of “The EDPS Strategy 2015-2019,” newly ensconced European Data Protection Supervisor Giovanni Buttarelli and Assistant Supervisor Wojciech Wiewiórowski have etched out a bold vision with ambitious goals, writes Christopher Kuner for Privacy Perspectives. The document lays out three major strategic objectives and 10 action items, and the interest in these pieces couldn’t be more clear: The release was attended by the first vice president of the European Commission and the chairm...
Read More

(Mar 3, 2015)
There’s a reason Mark Zuckerberg keynoted the Mobile World Congress in Barcelona, Spain, this week, writes Eduardo Ustaran, CIPP/E, in this post for Privacy Perspectives. “The presence of Facebook’s supremo at such an event confirms that the future of the Internet and its players is indeed mobile,” Ustaran writes. All the better, then, that the event also featured a panel on privacy for the first time, where the main topic was building trust. Ustaran pulls out lessons for privacy pros working in a mobile environment so they can prepare for a “truly borderless human connectivity.”
Read More

(Mar 3, 2015)
In the second installment of this series for The Privacy Advisor looking at monitoring programs across industries, including the privacy consultant, healthcare, IT, finance, government and telecom, Deidre Rodriguez, CIPP/US, talks with Danette Slevinski, vice president and corporate responsibility officer for Bon Secours Charity Health System, where she administers the corporate responsibility and Health Insurance Portability and Accountability Act (HIPAA) privacy program. "By having a monitoring program that you update regularly, at whatever interval works for your organization, you can ensure that internal and external changes do not result in noncompliance," Slevinski says. If you missed part one in this series, you can find it here.
Read More

(Mar 3, 2015)
A look at the White House’s recently announced Cyber Threat Intelligence Integration Center by TechNewsWorld identifies the elephant in the cyber room: Because the nation lacks a cybersecurity policy to unify the effort, the billions of data points are likely to overwhelm the center, especially given the technology and people needed to assimilate and process all that data has never been assembled in the necessary scale. However, some observers see it as a step in the right direction. “If the NSA...
Read More

(Mar 3, 2015)
You know the story: Such-and-such product’s privacy policy is longer than the average Shakespearean drama. And headlines repeat the mantra that users aren’t reading the fine print of privacy policies, while questions persist around the value of notice and choice. Skype is the latest to take up the call, announcing this week it is “updating the look of its Privacy Statement” with an aim toward “increasing the transparency of the organization as a whole, highlighting the information that is typically hidden from the consumer,” Sean Cameron writes in a piece for Microsoft’s WinBeta. “At Skype, we want to make it easier for you to understand and review the important documents that relate to our products and services,” Skype announced.
Read More

(Mar 3, 2015)
A parliamentary body in China has read a second draft of a proposed “far-reaching counterterrorism law that would require technology firms to hand over encryption keys and install security ‘backdoors,’ a potential escalation of what some firms view as the increasingly onerous terms of doing business in the world’s second-largest economy,” Re/code reports. The law is expected to be adopted in the weeks or months ahead, the report states, and the Obama administration has expressed concerns. “It’s ...
Read More

(Mar 3, 2015)
California Sen. Richard Pan (D-Sacramento) wants to overhaul the state’s open data portal and create the role of a chief data officer reporting to the secretary of the Government Operations Agency as leader of the effort, Techwire reports. Pan’s bill “would task the governor with naming a chief data officer no later than Jan. 1, 2016, and require at least 150 data sets to be published on the statewide open data portal by 2017,” the report states. The bill also seeks the creation of “a statewide open data roadmap” and calls for all data inventoried by state agencies to be published on the data portal by 2022.
Read More

(Mar 3, 2015)
Minnesota House Government Operations and Elections Policy Committee has given HF 327, a bill seeking to give Minnesota voters “an opportunity to amend their state constitution in order to reject significant parts of mass surveillance programs by both state and federal government officials,” a recommendation of “do pass,” TenthAmendment reports. HF 327 would allow Minnesota voters the chance to amend the state constitution and add references to protecting “electronic and communications data” against “unreasonable searches and seizures.” The report notes the addition “would make emails, phone records, Internet records and other electronic information gathered without a warrant inadmissible in state court.”
Read More

(Mar 3, 2015)
While Illinois already has a law on the books mandating data breach notification, dating from 2005, Attorney General Lisa Madigan has unveiled, with Sen. Daniel Biss (D-District 9) and Rep. Ann Williams (D-District 11), an updated law that would expand the type of information requiring notification to include medical information, geolocation data, marketing data and much more. The law would also require that companies take “reasonable” steps to protect data. The move comes “after 67 million personal records were hit last year,” the report states.
Read More

(Mar 3, 2015)
Law student Dan Knudsen is waiting on a decision as to whether his class-action lawsuit against the University of Montana (UM), regarding the university’s sharing of student information with financial aid processing firm Higher One, will proceed. “From my perspective, I am allowed the right to consent what happens to my personal information and Social Security number,” Knudsen told Montana Kaimin. Lucy France, UM’s legal counsel, argued that the Family Educational Rights and Privacy Act protects the university’s actions due to language surrounding financial aid evaluations and decisions.
Read More

The IAPP is the largest and most comprehensive global information privacy community and resource. Founded in 2000, the IAPP is a not-for-profit organization that helps define, support and improve the privacy profession globally.Learn more

The IAPP is the only place you’ll find a comprehensive body of resources, knowledge and experts to help you navigate the complex landscape of today’s data-driven world. We offer individual, corporate and group memberships, and all members have access to an extensive array of benefits.